aboutsummaryrefslogtreecommitdiff
path: root/id/server/idserverlib
AgeCommit message (Collapse)AuthorFilesLines
2014-03-19store AuthBlock for ForeignIdentities in MOASessionThomas Lenz1-0/+16
2014-03-19add configuration parameter to disable PVP2.1 assertion encryptionThomas Lenz2-1/+8
2014-03-19Add advanced parameter validation. Redirect is only allowed if Redirect URL ↵Thomas Lenz3-6/+24
maps to OA configuration. Load redirectTarget from OA configuration.
2014-03-19use default AssertionConsumingService from metadata if no specific is requestedThomas Lenz2-88/+67
2014-03-19change PVP2.1 metadata only include certificatThomas Lenz1-1/+1
2014-03-18check if redirect target is an valid online-applicationThomas Lenz1-1/+24
2014-03-17solve legacy configuration import errorThomas Lenz1-9/+10
2014-03-17Add KeyInfo element with certificate to SAML2 signatureThomas Lenz6-9/+93
2014-03-17change version to 2.0-RC2Thomas Lenz1-1/+1
2014-03-17change mandate profile configurationThomas Lenz5-17/+55
2014-03-17add additonal STORK error messagesThomas Lenz2-9/+29
2014-03-14Revert "change PKIX chaining mode constant"Thomas Lenz2-6/+12
This reverts commit 6c9e452d5ab984c1ef221c4a2e746454aa41e014.
2014-03-14bugfix possible NullPointerException in STORK configThomas Lenz1-17/+19
2014-03-14change PKIX chaining mode constantThomas Lenz2-2/+5
2014-03-14log an error if AuthConfigLoader finds no MOAIDConfigurationThomas Lenz1-12/+20
2014-03-14remove unused importsThomas Lenz1-2/+0
2014-03-11SAML1: if OA parameter is empty then return an errorThomas Lenz1-0/+10
2014-03-11change AssertionStorage log messagesThomas Lenz1-12/+12
2014-03-10Improvement for cluster operationsThomas Lenz5-20/+67
- only use http GET parameter for session management and no information from browser sessions.
2014-03-07first test for authentication which requires no browser session ↵Thomas Lenz9-150/+82
(req.getSession())
2014-03-07if an error occurs remove MOASessionThomas Lenz4-7/+18
2014-03-07use first NameIDFormat from metadataThomas Lenz1-2/+12
2014-03-07set no NameQualifier in element subjectNameID if transient NameIDFormat is usedThomas Lenz1-0/+1
2014-03-07PVP 2.1: add Transient and Unspecified NameIDFormatThomas Lenz6-74/+244
* only return a persistent subjectNameID if it is requested or metadata includes only one NameIDFormat with value persistent
2014-03-06Fix NullPointer exceptionThomas Lenz1-1/+1
2014-03-06Merge remote-tracking branch 'remotes/origin/inbound' into moa2_0_tlenzThomas Lenz3-3/+13
2014-03-06change MOA-ID version to 2.0-RC1Thomas Lenz1-1/+1
2014-03-05Update eIDSTORKTOKEN attribut builderThomas Lenz3-22/+26
2014-03-05remove unused codeThomas Lenz3-4/+2
2014-03-05update default BKUSelectionFormThomas Lenz1-3/+9
2014-03-05fixed list overrideFlorian Reimair1-1/+1
2014-03-05inform moasession about the mandate auth caseFlorian Reimair2-2/+12
2014-02-25remove unused elements from Security-Layer requestThomas Lenz1-18/+20
2014-02-25Bugfix: load PublicURLPrefix from configThomas Lenz1-11/+14
2014-02-24use Java-Applet height and width from OA config as defaultThomas Lenz1-6/+6
2014-02-24add error message if SL-Transformation is not foundThomas Lenz2-5/+9
2014-02-24* add default configuration valuesThomas Lenz11-241/+83
* add MOA-ID-Auth publicURLPreFix as mandatory configuration value * remove ReloadConfiguration serlet * change moa-id-lib to use publicURLPreFix * update repository
2014-02-20BugFix: STORK -> MOA-ID-AUTH NullPointerException if no STORK configuration ↵Thomas Lenz1-10/+13
exist
2014-02-14bugfix: fix possible nullpointer exceptionThomas Lenz1-2/+5
2014-02-14allow to load SL-Templates from local file-systemThomas Lenz4-10/+49
2014-02-13* add additional loggingThomas Lenz2-13/+4
* move bkuURL validation
2014-02-13now fetchSavedCredential use a database query to get the certificate from entityThomas Lenz1-8/+14
2014-02-13Now the whole metadata file is NOT rejected if a single entity is not valid.Thomas Lenz1-7/+34
2014-02-13* add new error message if MOA-ID-Proxy configuration is not foundThomas Lenz3-4/+5
* change SAML1 legacy-request parameter validation * change OA-SL Template labels
2014-02-11* add OA specific BKU selection templateThomas Lenz8-38/+117
* add OA specific send-assertion template * add OA specific applet height and width configuration * add PVP2.x reload checkbox in PVP2.x OA configuration * add new elements to MOA-ID configuration
2014-02-11customize OpenSAML bootstrap to use SHA256 by defaultThomas Lenz2-0/+190
2014-02-11change metadata validto area to 24 hoursThomas Lenz1-7/+3
2014-02-07* use MOADefaultBootstrap to set SHA256 as default security parameterThomas Lenz6-20/+50
* SAMLEngine: deaktivate DefaultBootStrap.
2014-02-06BRZ:Thomas Lenz5-51/+62
-add SAML1 SourceID parameter in moa-id general Bugfix: -SSO target had an error in case of business-service -OA with business-service whichout single sign-on produce an error
2014-02-06new depenency management for moa-id-configurationThomas Lenz1-9/+7
to avoid problems with HeapSpace